PCI - DSS compliance - does it apply to you?

The Payment Card Industry Data Security Standard (PCI DSS) was originally developed by Visa International and MasterCard Worldwide, and endorsed by other payment providers including American Express, Diner's Club, JCB and Discover Financial Services.

The PCI DSS must be met by all organizations that accept or store information from credit/debit cards issued by the PCI payment providers/credit card companies.

Note - it is not law, more a contractual obligation applied and enforced by Payment service providers themselves. They can impose fines and restrictions of their guidelines are not adhered to.

If you collect credit card details to process through a terminal or other process then you should be aware of the criteria you should be complying with. See the following link for more info:
http://www.itgovernance.co.uk/pci_dss.aspx
https://www.pcisecuritystandards.org/



Published in March 2008 newsletter
Valid XHTML 1.0 Transitional Valid CSS!